Giter Club home page Giter Club logo

selefra's Introduction

GitHub stars GitHub releases License Downloads Go Report Card tweet Twitter Github

Why Selefra?

Selefra is an open-source cloud governance tool to analyze multi-cloud assets for security, compliance, and policy enforcement.

  • Detect-to-Remediate: discover and remediate unnoticed risky problems in one stop.
  • Provider Agnostic: reduce switching cost between isolated control planes.
  • Ease-of-Use: simplified usage to write and maintain for quick fixes and long-term usage.

With rules written in YAML and SQL, Selefra automatically pulls data from providers including AWS, GCP, Azure, and more.

For example, a rule to check if AWS S3 bucket is misconfigured:

selefra:
  name: selefra-demo
  cli_version: ">=0.0.1"
  providers:
    - name: aws
      source: 'selefra/aws'
      version: "latest"
  connection:
    type: postgres
    username: postgres
    password: pass
    host: localhost
    port: 5432
    database: postgres
    sslmode: disable

providers:
  - name: aws
    regions:
      - us-east-1
      
rules:
  - name: Disabled_MFA
    query: select * from aws_iam_users where user_name = '<root_account>' and mfa_active = 'f'
    labels:
      severity: Critical
    metadata:
      title: "MFA is disabled for root user"
      description: "MFA is disabled for root user"
    output: "AWS user has disabled MFA, username: {{.user_name}}"

Getting Started

For detailed instructions on prerequisites, check Get Started for more info.

Otherwise, run a demo through the following steps, it should take less than a few miniutes:

1. Install Selefra

download packages to install Selefra.

If you are MacOS user, tap Selefra with Homebrew.

brew tap selefra/tap

Now, install Selefra

brew install selefra/tap/selefra

2. Create a project

selefra init selefra-demo && cd selefra-demo

3. Build code for the project

selefra apply

Documentation

See Docs for best practices and detailed instructions. In docs, you will find info on installation, CLI usage, project workflow and more guides on how to accomplish cloud inspection tasks.

Community

Selefra is a community-driven project, we welcome you to open a GitHub Issue to report a bug, suggest an improvement, or request new feature.

  • Join Selefra Community on Slack. We host Community Hour for tutorials and Q&As on regular basis.
  • Follow us on Twitter and share your thoughts!

CONTRIBUTING

For developers interested in building Selefra codebase, read through Contributing.md and Selefra Roadmap. Let us know what you would like to work on!

License

Mozilla Public License v2.0

selefra's People

Contributors

selefra-bot avatar leonynn avatar

Forkers

crestlee monserrat101 cosmic-flood

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.